Your Security is Our Top Priority

We employ ocean-deep security measures to protect your data and ensure your chatbots operate safely and reliably. Trust flows naturally, and we work hard every day to earn yours.

Enterprise-Grade Security

Multiple layers of protection ensure your data and your customers' data remain secure at all times.

Data Encryption

All data is encrypted in transit and at rest using industry-standard encryption.

  • TLS 1.3 for all connections
  • Encrypted database storage (AES-256)
  • Secure API key management
  • HTTPS everywhere

Infrastructure Security

Cloud-native infrastructure built on trusted platforms for reliability.

  • Hosted on Vercel & Supabase
  • Automatic failover
  • DDoS protection via Cloudflare
  • Regular dependency updates

Access Control

Secure access controls to protect your account and data.

  • Secure passwordless login (OTP)
  • Project-based permissions
  • API key authentication
  • Session management

Privacy Protection

Your privacy is our priority. We never sell or share your data with third parties.

  • Privacy-focused design
  • Data deletion on request
  • Transparent data usage
  • No third-party data sharing

Compliance & Certifications

We meet and exceed international security standards to give you peace of mind.

🇵🇭

Data Privacy Act 2012

Philippine Data Privacy Act compliance

Aligned
🇪🇺

GDPR Principles

Following GDPR data protection principles

Aligned
💳

Secure Payments

Payments handled by PCI-compliant PayMongo

Via PayMongo
☁️

Cloud Security

Built on SOC 2 compliant infrastructure (Vercel, Supabase)

Via Partners
🔒

Data Encryption

All data encrypted in transit and at rest

Implemented
🔄

Regular Updates

Continuous security improvements and patches

Ongoing

Our Security Practices

Security isn't just technology—it's a commitment to best practices at every level.

Code Reviews

All code changes undergo review before deployment to production.

Infrastructure Monitoring

Cloud platform monitoring via Vercel and Supabase dashboards.

Secure Development

Security-conscious development with TypeScript and linting.

Automatic Backups

Database backups handled automatically by Supabase.

Dependency Updates

Regular updates to address security vulnerabilities in dependencies.

Access Logging

API and authentication events are logged for security review.

How We Handle Your Data

Transparency in data handling from collection to deletion.

1

Collection

Data is collected only with explicit consent

  • Minimal data collection
  • Clear privacy notices
  • Opt-in consent
2

Processing

Data is processed securely and only for stated purposes

  • Purpose limitation
  • Data minimization
  • Accuracy maintenance
3

Storage

Data is stored with multiple layers of protection

  • Encrypted at rest
  • Access logging
  • Regular backups
4

Deletion

Data is securely deleted when no longer needed

  • Automated retention policies
  • Secure deletion
  • Right to erasure

Security Concerns?

Found a security issue or have concerns? Please contact us at support@alonchat.ai. We take all security reports seriously.

Questions About Security?

We're here to answer any questions about how we protect your data.